CVE-2025-20145

MEDIUM EPSS 29.4%
Published Mar 12, 20251y ago · Modified Jun 17, 20262w ago
5.8 CVSS 3.1
Medium
Find Similar
Published Mar 12, 2025 1y ago
Last Modified Jun 17, 2026 2w ago

Description

A vulnerability in the access control list (ACL) processing in the egress direction of Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability exists because certain packets are handled incorrectly when they are received on an ingress interface on one line card and destined out of an egress interface on another line card where the egress ACL is configured. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass an egress ACL on the affected device. For more information about this vulnerability, see the section of this advisory. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

CVSS Details

Base Score
5.8
Exploitability
3.9
Impact
1.4
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality None
Integrity Low
Availability None

Threat Intelligence

EPSS Exploit Probability
29.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-264

Affected Products 69

VendorProductVersionRange
ciscoios_xr6.5.1any
ciscoios_xr6.5.2any
ciscoios_xr6.5.3any
ciscoios_xr6.5.92any
ciscoios_xr6.5.93any
ciscoios_xr6.6.1any
ciscoios_xr6.6.2any
ciscoios_xr6.6.3any
ciscoios_xr6.6.4any
ciscoios_xr6.6.25any
ciscoios_xr7.0.1any
ciscoios_xr7.0.2any
ciscoios_xr7.0.11any
ciscoios_xr7.0.12any
ciscoios_xr7.0.14any
ciscoios_xr7.0.90any
ciscoios_xr7.1.1any
ciscoios_xr7.1.2any
ciscoios_xr7.2.1any
ciscoios_xr7.2.2any
ciscoios_xr7.2.12any
ciscoios_xr7.3.1any
ciscoios_xr7.3.2any
ciscoios_xr7.3.3any
ciscoios_xr7.3.4any
ciscoios_xr7.3.5any
ciscoios_xr7.3.6any
ciscoios_xr7.3.15any
ciscoios_xr7.3.16any
ciscoios_xr7.4.1any
ciscoios_xr7.4.2any
ciscoios_xr7.5.1any
ciscoios_xr7.5.2any
ciscoios_xr7.5.3any
ciscoios_xr7.5.4any
ciscoios_xr7.5.5any
ciscoios_xr7.5.12any
ciscoios_xr7.6.1any
ciscoios_xr7.6.2any
ciscoios_xr7.7.1any
ciscoios_xr7.7.2any
ciscoios_xr7.7.21any
ciscoios_xr7.8.1any
ciscoios_xr7.8.2any
ciscoios_xr7.8.22any
ciscoios_xr7.9.1any
ciscoios_xr7.9.2any
ciscoios_xr7.10.1any
ciscoios_xr7.10.2any
ciscoios_xr7.11.1any
ciscoios_xr7.11.2any
ciscoios_xr7.11.21any
ciscoios_xr24.1.1any
ciscoios_xr24.1.2any
ciscoios_xr24.2.1any
ciscoios_xr24.2.2any
ciscoios_xr24.2.11any
ciscoios_xr24.2.20any
ciscoios_xr24.3.1any
ciscoios_xr24.3.2any
ciscoios_xr24.4.1any
cisco8608*any
cisco8804*any
cisco8808*any
cisco8812*any
cisco8818*any
cisconcs_5504*any
cisconcs_5508*any
cisconcs_5516*any

References 2

  • blog.apnic.net https://blog.apnic.net/2024/09/02/crafting-endless-as-paths-in-bgp/
    Technical Description
  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-modular-ACL-u5MEPXMm
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.